Abstract
Information security is a critical issue for small and medium-sized enterprises (SMEs) around the world. These organisations face an increasing number of security incidents and the sophistication of attacks. In order to remain competitive and protect their and their customers’ critical information, it is essential that SMEs can manage their cybersecurity risks appropriately. Accordingly, it is important that these SMEs can rely on tailored information security assessments and frameworks. However, there is a scarcity of knowledge regarding their specific needs and the practical implementation of cybersecurity within these organisations. To address this knowledge gap, an exploratory study was conducted on the SME cybersecurity situation, with a particular focus on the implementation level of cybersecurity controls within SMEs in Austria and Germany. We surveyed 30 SMEs regarding their cybersecurity implementation situation in 2023. Our findings show, among other things, a very heterogeneous picture regarding the implementation level of cybersecurity controls and outline areas for action.
Author supplied keywords
Cite
CITATION STYLE
Lill, B., Sauerwein, C., Zeisler, A., Hochstrasser, C., & Mexis, N. (2025). Assessing Cybersecurity Readiness Among SME. In International Conference on Enterprise Information Systems, ICEIS - Proceedings (Vol. 2, pp. 253–263). Science and Technology Publications, Lda. https://doi.org/10.5220/0013353400003929
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
